Bonum Certa Men Certa
The Latest Microsoft Strategy: Embrace, Extend, Deceive, Abuse and Diffuse | Links 7/2/2015: Manjaro 0.8.12, Korora 21

Parasitical Firms Like Black Duck Exploit Bugs With Branding to Market Nonfree Services/Software

Skulls



Summary: Parasites that take advantage of public panic and lack of comprehension are occupying paper space, as usual

LAST WEEK we wrote about the overblown threat called/dubbed "GHOST" (all capital letters) by the company seeking to make money from it despite being only the third to discover it and knowing it was not much of a big deal. We have not yet heard about any major exploit, which pretty much can be said about the OpenSSL bug as well (this one too was discovered by two entities before a Microsoft-connected firm irresponsibly publicised it, giving it a name and a logo to sell its own services and spread FOSS-hostile FUD for many months to come). What unifies the GLibC and OpenSSL bugs is that they got "brand recognition" very quickly. It was like a marketing campaign rather than a non-alarmist discussion about security -- something that non-technical/technically-illiterate journalists would surely fail at.



"As more stories are published in the media about big "hacks" (cracks) against large corporations we can't help but feel that the media neglects to mention that Microsoft Windows -- not OpenSSL or Bash, let alone GLibC -- is usually to blame."Days ago we saw the most FOSS-hostile IDG Web site becoming a platform of Black Duck, a Microsoft-connected firm that sells proprietary software by spreading and accentuating fear of FOSS. The article at hand uses bugs with "branding" to spook FOSS users while Black Duck, paying to publish this self-promotional press release on the same day, is still pretending to be an authority in FOSS.

The bugs with "branding" were also exploited by Veracode in this article (on the same day) and as Eric Lorenzo pointed out: "If businesses don't update legacy software, often they will will have bugs fixed in later versions! Shock!"

"I wonder what percentage of businesses are using obsolete Windows without updates," he added.

As more stories are published in the media about big "hacks" (cracks) against large corporations we can't help but feel that the media neglects to mention that Microsoft Windows -- not OpenSSL or Bash, let alone GLibC -- is usually to blame. It not only sports back doors but is also badly designed and won't patch known critical holes. It is basically designed to be not secure.

When it comes to reporting on computer security, the corporate press has almost zero legitimacy. All it knows is brands and it is eager to promote corporate partners that piggyback those brands (like "heartbleed") or stories (Anthem, Sony, etc.), claiming to be experts and offering remedies other than patches which were already issued and are free to apply by all.

The Latest Microsoft Strategy: Embrace, Extend, Deceive, Abuse and Diffuse | Links 7/2/2015: Manjaro 0.8.12, Korora 21

Recent Techrights' Posts

Fresh IBM Layoffs Reported in Europe and North America, Jobs Allegedly Moved to South Asia (Low Salaries)
As usual, IBM does not talk about this
Microsoft Has Not Much Left to Show Investors, Shares Fall Almost 20%
It's not even clear how Microsoft makes money anymore
The Fall of the Open Source Initiative (OSI): The OSI Election is Rigged, Biased Against People Who Oppose the Openwashing of GPL-Violating Bots Operated by Microsoft for Profit (OSI Gets Paid to Promote This)
they reckon that pretence of calm would serve them best, helped by puff pieces
In Vietnam, statCounter Sees Microsoft Windows Falling Below 7% "Market Share"
Can Microsoft still demand $500 or more per Windows licence?
 
Links 11/03/2025: NASA Besieged and "DOGE Has Become What It Claimed To Destroy"
Links for the day
Illuminating Injustice is Critical When Reckless Microsofters and Law Firms Try to Silence Reporters of Violence Against Women
I want to clarify that I'm well within my right (and not running afoul of any rules) by explaining what goes on here
EPO Central Staff Committee: "The Strategy of the Office Lacks Transparency and Cannot be Understood"
Microsoft and the EPO violate data protection laws
Links 11/03/2025: Spring and Misfin Server
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, March 10, 2025
IRC logs for Monday, March 10, 2025
Latvia (and Lithuania) Stepping Away From GAFAM, Microsoft
Windows becomes unessential as Android and GNU/Linux rise
Microsoft Layoffs Are Infectious (Don't Get Acquired or Become a Partner)
It seems like companies choosing to become "buddies" with Microsoft are dooming themselves and their products
A Closer Look Inside the EPO, Courtesy of Benoît Battistelli's Submissive Lapdogs Roberta Romano-Götsch and Elodie Bergot
new report comes from the Local Staff Committee Munich (LSCMN)
Links 10/03/2025: Staff Strikes, Mass Layoffs in Gaming Industry
Links for the day
Gemini Links 10/03/2025: "Eat The Rich" and Two-Year Anniversary of the 'Space Elevator' Orbit (Like 'Webring')
Links for the day
Links 10/03/2025: Small Web Praised, LLM Chatbots Exposed as Worse Than Useless Again
Links for the day
A Call for GNU/Linux and BSD Developers to Unite Against GAFAM and the Regime They Empower
We have long encouraged and continue to encourage people who value Software Freedom to altogether boycott GAFAM
The Ludicrous Mythology of Commonality as Signal of Value, Merit, Popularity
Devalue what's true, promote marketing?
[Video] Richard Stallman on the Four Essential Freedoms (Manuel Cuda News, 2025)
Added to a channel several days ago by Manuel Cuda News
Gemini Links 10/03/2025: Realisation About Young People, Punks, and Discord IPO
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, March 09, 2025
IRC logs for Sunday, March 09, 2025
[Video] Richard Stallman on Understanding the Misconception of So-called 'Artificial Intelligence'
to "know and understand"
FSF's Defective by Design (DBD): Amazon Tightens the Digital Handcuffs
Reproduced verbatim
The Fall of the Open Source Initiative (OSI): Plenty of Issues, Plenty of Censorship
The OSI is abusive on many levels!
EPO Staff Appraisals Apparently Benefit Kakistocracy, Including Cheaters Who Grant Illegal Patents and Punish Good Patent Examiners (Who Find Valid Reasons for Denials)
In prior reports the staff representatives said that rewards typically went to people who granted many patents, i.e. didn't do proper examination and instead just allowed many fake patents get enshrined as EPs, causing fiasco (from which some patent attorneys could profit)
As The Web Gets Drowned Out, Sinking in a Pool of LLM Slop, Real News Sites With Real News Become Increasingly Rare If Not Extinct
This is a real problem
Links 09/03/2025: Moderna Patents Thrown Out, Climate United Sues E.P.A.
Links for the day
Gemini Links 09/03/2025: Lagrange 1.18.5 and Writing Mannerisms
Links for the day
Links 09/03/2025: FiveThirtyEight Killed by Disney, Nature (Journal) Chooses Suicide by Slop
Links for the day
Links 08/03/2025: International Women's Day, Software Patents Being Squashed
Links for the day
Hiding Problems Doesn't Work
transparent organisations will be more stable and sustainable
The Harder They Try to Censor, the Bigger the Scandal (and the Impact) Will Be
We don't plan to self-censor our coverage; sometimes we just delay publication a little
Gemini Links 09/03/2025: Leasehold Derangement Syndrome, Raspberry Pi, and More
Links for the day
All-Time Low for Microsoft in Africa
it helps show how irrelevant Microsoft is becoming
French woman (frontaliere) trafficked to promote unauthorised cross border Swiss insurance
Reprinted with permission from Daniel Pocock
New York Times & Guardian reporting on Modern Slavery Act prosecution of Glodi Wabelua
Reprinted with permission from Daniel Pocock
Diana & Adrian von Bidder-Senn, EVP, Palm Sunday & Debian death on wedding day
Reprinted with permission from Daniel Pocock
The RTO (Return-to-office) Layoffs or 'Soft' Layoffs at IBM and Red Hat
There are certainly many layoffs going on there, but many are described as "resignations" or "retirements" after RTO or some other form of relocation
Under the Pen Name "John O'Donnell" (LLM Slop, Not Real Article or Author) LinuxLinks Pushes Spammy Page
it happened some hours ago.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Saturday, March 08, 2025
IRC logs for Saturday, March 08, 2025